win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka “Win32k Insufficient User Input Validation Vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
windows_server_2008 | eq | sp2itanium | |
windows_vista | eq | - sp1 | |
windows_xp | eq | sp2x64 |